Changelog
nss-pam-ldapd (0.8.11-1) experimental; urgency=low
* new upstream release:
- add a pam_password_prohibit_message nslcd.conf option to deny password
change (thanks to Ted Cheng)
- add a sasl_canonicalize option to allow disabling of hostname
canonicalisation in OpenLDAP
- have the nslcd daemon load the nslcd user's supplementary groups to have
more flexibility with assigning group permissions (LP: #1020303)
- fix logic error when falling back to getting ranged attribute values for
possibly binary attributes (thanks scan-build)
- fix a problem when storing negative hit to dn2uid cache (thanks
scan-build)
- small portability improvements
- grow all search filter buffers to 4096 bytes
* drop 01-use-poll-instead-of-select.patch which is part of 0.8.11
* install upstream ldapns.ldif instead of debian/ldapns.ldif one
* mark ldapns.schema and ldapns.ldif as example files
* upgrade to standards-version 3.9.4 (no changes needed)
* small language improvement in debconf template and list more SASL
mechanisms
* update X-Start-Before in the init script so that nslcd is started
before various IMAP servers (closes: #692633)
* update X-Start-Before in the init script so that nslcd is started
before a display manager
* update Should-Start in the init script so that nslcd is started after
a Kerberos KDC is available
-- Arthur de Jong <email address hidden> Fri, 16 Nov 2012 21:00:00 +0100